3Com Switch 8800 Configuration Guide
Chapter 32 ACL Configuration
32-13
Note:
Only the commands concerning ACL configuration are listed here.
1)
Define the time range.
Define the time range from 8:00 to 18:00.
[SW8800] time-range 3Com 8:00 to 18:00 daily
2)
Define the traffic with source IP 10.1.1.1.
Create a name-based basic ACL “traffic-of-host” and enter it.
[SW8800] acl name traffic-of-host basic
Define ACL rule for source IP 10.1.1.1.
[SW8800-acl-basic-traffic-of-host] rule 1 deny source 10.1.1.1 0 time-range
3Com
3)
Activate the ACL.
Activate the ACL “traffic-of-host”.
[SW8800-Ethernet2/1/1] packet-filter inbound ip-group traffic-of-host
32.4.3 L2 ACL Configuration Example
I. Network requirements
With proper L2 ACL configuration, during the time range from 8:00 to 18:00 everyday
the switch filters the packets with source MAC 00e0-fc01-0101 and destination MAC
00e0-fc01-0303 (configuring at the port Ethernet2/1/1 to the switch.)
II. Network diagram
Switch
#1
To router
Figure 32-3
Network diagram for L2 ACL configuration
III. Configuration procedure
Note:
Only the commands concerning ACL configuration are listed here.